nicholasjackson / cnitchLinks
Container Snitch checks running processes under the Docker Engine and alerts if any are found to be running as root
☆78Updated 7 years ago
Alternatives and similar repositories for cnitch
Users that are interested in cnitch are comparing it to the libraries listed below
Sorting:
- Docker authentication plugin to enforce a image pull policy. Whitelist Docker images allowed to be pulled.☆42Updated 7 years ago
- Kubernetes security scanner based on the open-source container vulnerability scanner Trivy.☆23Updated 4 years ago
- Web Application Firewall (WAF) on Kubernetes☆69Updated 3 years ago
- The Container Security Book—a free book for practitioners☆82Updated 5 years ago
- Falco container runtime security extras (default rulesets and more)☆49Updated 6 years ago
- ⛔️ DEPRECATED Kubernetes operator and CLI tool for encrypting and managing Kubernetes secrets☆65Updated last year
- Bash wrapper script for Aquasec Microscanner☆61Updated 5 years ago
- ☆55Updated 7 years ago
- A Dockerfile that creates an image with known vulnerabilities.☆49Updated 3 years ago
- A proxy for docker.sock that enforces access control and isolated privileges☆144Updated 4 years ago
- Use Manifesto to store and query metadata for container images.☆163Updated 6 years ago
- A @HashiCorp Vault plugin for authenticating and receiving policies via Slack.☆50Updated 5 years ago
- A magic shim for Docker credential helpers 🪄☆71Updated 3 years ago
- API that leverages Clair to scan Docker Registries and Kubernetes Clusters for vulnerabilities☆151Updated 2 years ago
- A Kubernetes implementation in bash (srsly)☆17Updated 7 years ago
- Because Clair needs a friend☆31Updated 6 years ago
- Securely store secrets at rest using Hashicorp Vault☆55Updated 2 years ago
- A Terraform module to create and maintain Kubernetes clusters on AWS easily, relying entirely on kops☆38Updated 2 years ago
- An actuary is a business professional who analyzes the financial consequences of risk.☆80Updated 7 years ago
- Experimental CLI that takes a Docker image url and runs it in a Firecracker VM☆65Updated 6 years ago
- Darkbit Cloud Security Tools☆25Updated 4 years ago
- Vault Unseal automation☆130Updated 6 years ago
- Kubernetes Ingress and Service monitoring of HTTP/HTTPS requests☆22Updated 5 years ago
- Command line tool to check the validity and expiration dates of SSL certificates.☆162Updated 4 years ago
- Kubernetes security and vulnerability tools and utilities.☆57Updated 4 years ago
- CLI tool for CIDR range operations (check, generate)☆138Updated 5 years ago
- Simplifying Seccomp enforcement in containerized or non-containerized apps☆112Updated 4 years ago
- proof-of-concept for recovering the master key from a Hashicorp Vault process☆69Updated 2 years ago
- Provides short-lived credentials for Elasticsearch that are unique to each user or application.☆28Updated this week
- Continuous Zero-Downtime Deployments for Kubernetes & Istio☆27Updated 6 years ago